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Abstract 

A novel cryptography method based on the Lorenz's attractor chaotic system is 
presented. The proposed algorithm is secure and fast, making it practical for gen- 
eral use. We introduce the chaotic operation mode, which provides an interaction 
among the password, message and a chaotic system. It ensures that the algorithm 
yields a secure codification, even if the nature of the chaotic system is known. The 
algorithm has been implemented in two versions: one sequential and slow and the 
other, parallel and fast. Our algorithm assures the integrity of the ciphertext (we 
know if it has been altered, which is not assured by traditional algorithms) and 
consequently its authenticity. Numerical experiments are presented, discussed and 
show the behavior of the method in terms of security and performance. The fast 
version of the algorithm has a performance comparable to AES, a popular cryptog- 
raphy program used commercially nowadays, but it is more secure, which makes 
it immediately suitable for general purpose cryptography applications. An internet 



1 



page has been set up, which enables the readers to test the algorithm and also to 
try to break into the cipher in. 

1 Introduction 

Since ancient times, the art of encrypting messages using ciphers or breaking into them, 
has decided the destiny of the civilization. Throughout the history, in many situations, 
cryptography was directly responsible for the fortune or doom of kings and queens. 
The success of exchanging secret messages decided the future of many battles and 
even wars. Some of them were important and very famous, such as the Thermopiles 
battle (Greece - 490 BC), where according to the legend, the Spartans were notified 
of the Persian invasion by a crypto message hidden in earthenware, which enabled the 
Spartans to plan a defense strategy before the Persian attack. Although the secret of 
the information plays an essential role in military strategy, it was only during the XX 
century wars that its real importance become obvious and popular. With the advent of 
radio, it was possible to exchange vital strategy information by electromagnetic waves. 
Since there are no boundaries for radio waves, the cryptography power appeared as a 
fundamental strategy element. It is responsible for ensuring that the enemy, although 
being able to receive the message, is not capable of understanding it. In fact, cryptogra- 
phy was decisive in the destiny of the first and second world war. Although cryptogra- 
phy is an important military and political information tool, these uses overcame the war 
times. In the digital ages, cryptography ensures security of business and bank transac- 
tions over the internet, and it can also ensure privacy of private messages, making the 
modern computer, the internet and wireless networks secure and usable technologies. 

The objective of cryptography consists of encrypting a message, file, document or 
image. To understand this procedure, consider the following definitions. One thinks of 
the object to be encrypted as a string (vector) of size n p . The components of this vector 
is transformed to decimal ASCII representation (integers ranging from to 2 s — 1) 
forming the plaintext, which is represented by P, with size n p . Also, one needs a pass- 
word string, which is transformed to decimal ASCII representation forming 7?, with 
size 71,,-. The plaintext P is transformed into the ciphertext C via an encode function 
C = Ejf(P), which is parametrized by the password ff. To retrieve the plaintext from 
the cipher, one uses the decode function P — D^(C), where = EZ 1 is the inverse 
of the encode function and parametrized by ir. Perhaps the simplest encode function 
is the monoalphabetic (Cesar) cipher E w (Pi) = (Pi + ir) mod 2 s , where 2 8 is the 
length of our alphabet, Pi is a component of P and tt is the integer associated to the 
password. The associated decode function is: D^iCj) = (C\ — w) mod 2 s . Here, 
we call attention to the reversibility property of the mod operation. Care must be 
paid because the signal in one of the arguments of the mod operation is reversed, for 
instance, C = A + B mod D and A = C - B mod D. 

The current cryptography methods are based on discrete mathematics (symmetrical 
key) (lffll and number theory (asymmetrical key) J5}j7). These algorithms use elemen- 
tary mathematical as ciphers and have to increase the computing complexity to ensure 
a secure crypto. Taking this into account, they carry out many bit-to-bit operations 
and permutation between neighboring elements, or they have to use very long keys 
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(asymmetrical algorithms - nowadays RSA algorithms, for instance, use keys varying 
between 2 10 and 2 11 bits) to hide information. However, for both strategies, the in- 
crease in the computing complexity and the size of the keys only ensure that the cipher 
is secure for a certain time. The constant increase in computer power and the evo- 
lution of the cryptoanalyses algorithm have made it easy to break into. Nowadays, 
although there are algorithms which are capable to breaking into this kind of ciphers, 
they take too long, making them impractical [8]{T0|. The increase in computational 
power makes algorithms based on elementary mathematics weak. One example is the 
DES method [9], which was popular and largely used in the past. However, the algo- 
rithm became too weak and is no longer in use nowadays. 

To make the ciphers more secure, some new mathematical methodologies have to 
be considered and consequently new cryptography approaches arise. In this context, 
the chaos theory and the complex dynamical systems appear as very attractive alterna- 
tives to develop cryptography methods (TTJ. Chaotic systems have some characteristics 
that make them valuable for cryptography, such as: (i) complex numerical patterns, 
(ii) unpredictably for unknown initial conditions, (iii) strong dependence on the ini- 
tial conditions, (iv) based on relatively simple equations and (iv) determinism. The 
cryptography algorithms based on chaos generally explore the symmetrical approach. 

Cryptography algorithms using chaos appeared in the 90's. The first ones shuffle 
continue time signals using chaos |12 15) and also digital signals p6] . At the end 
of the decade, chaos cryptography applied to digital data was introduced. In 1998, 
Baptista [17| proposed the use of the logistic map as a pseudo random generator to 
make a cipher capable of dealing with bit sequences. The Baptista's algorithm was 
improved by Wong and collaborators p8| making it faster and more secure. The block 
cryptograph was incorporated in the logistic map in 2005 by Xiang et. al. p9) as an 
enhancement of the previous methods. As far as we are aware, there are two proposals 
in the literature using the Lorenz's attractor as basis of cryptography methods. The first 
one (20] was proposed in 1998, but it is very simple and weak. In the second one pT| , 
the Lorenz's attractor is used to generate pseudo random numbers in the same sense as 
the logistic map based ciphers. 

In this work a novel cryptography method based on the Lorenz's attractor is intro- 
duced. The proposals of the algorithm are to be secure and fast, making it practical 
for general use. In cryptography theory, the strongest cipher (impossible to break) is 
reached when the pad has the same length as the message (OTP - One-time pad ci- 
pher) (22). We use the Lorenz's attractor to compute a virtually infinite pad exploring 
the chaos. The complexity of the attractor and its determinism, makes it possible to 
compute chaotic and long number sequences. What makes the OTP impossible to be 
broken in is the fact that one does not know the pad. For instance, if one uses a book to 
write a OTP cipher, the cipher is decoded when the book is discovered. Since we use 
the Lorenz's attractor to compute a pad, although it is difficult, one can compute the 
Lorenz's trajectory and discover the cipher pad. To make this task harder to perform, 
we have added an operation mode in chaos, which we call the chaotic operation mode. 
The chaotic operation mode is a technique, inspired by traditional cryptography (op- 
eration mode (23j), which provides an iteration between the password, already coded 
message and chaotic system to make a complicated walk over the attractor. 

The presentation of this paper starts with a discussion and a description of the 



3 



chaotic operation mode (Section|2]l. The cryptographic algorithm is proposed in details 
in Section [3] and the results are showed the Section [4] illustrating the behavior of the 
proposed method. In Section|6] the paper ends with a discussion about the method. 



2 Chaotic Operation Mode 

Cipher-block algorithms are able to carry out bit-to-bit operations between the neigh- 
bors of the plaintext and the password. This approach has a disadvantage of making 
similar ciphertext sequences for similar blocks of the plaintext, consequently making a 
weak cipher. The operation mode was created to correct this fault, which main idea is to 
make the blocks independent. Consequently, the ciphertext is encrypted combining the 
information of the password plus the previous plaintext sequence. It can ensure that 
similar blocks of the plaintext are codified as different ciphertext, making the cipher 
stronger. 

One of the most popular operation mode algorithms is Cipher-Block Chaining 



(CBC) [23]. Each component of the plaintext P, of size n p is xored with the previ- 
ous ciphered element: Ci = E^(Pi © Cj_i), where Cq is an arbitrary value used to 
encode the first component of C that can also be used as an extra password. This value 
has an important role in the crypt process, since without it one cannot decode the mes- 
sage. The value of Co is generated from the password and it is desirable to include 
an additional parameter which may be different for each user. The symbol © repre- 
sents the bitwise XOR logical operation. We notice that the size of C is n c = n p + 1 
and that the elements of P and C are integers ranging from to 2 8 — 1 representing 
the decimal ASCII code. Here, the encode function E# represents any symmetrical 
cryptography algorithm (TJQ using password ir. The operation mode uses information 
from the previous coded sequence (Cj_i) to code d to ensure that similar sequences 
in P do not have the same sequences in C. The inverse process also combines previous 
coded sequence to decode: Pj = D^[Ci © Cj_i), where D% is the decode function. 

We observe that encryption and decryption operation can carried out by the same 
procedure due to the reversible property of the bitwise XOR logical operator. To illus- 
trate the reversibility property, consider two bit sequences P and ir and the resulting 
bit sequence C = Pffi7? = 7rffiP. One then has P = C © ir = ir © C and 
7r = Pffi(7 = C © P. There are other operators that allow the reverse operation, for 
instance, as mentioned in the introduction, the mod combined with a sign inversion in 
the argument. One interesting cryptographic scheme uses cellular automata p4) . In 
this case, the cellular automata must be reversible to preserve the information of the 
initial states p5H27) . For a cellular automaton to be reversible, the global function 
must be bijective to have an inverse. Local functions that involve only bitwise XOR 
logic operation lead to a linear global function, therefore, a bijective function (with 
non-singular transition matrix) [28,(29). 

Since the preserved patterns of the plaintext in the ciphertext may give clues for 
cipher analysis and the cipherblock chain is not strong enough, here, we propose to use 
dynamical systems in the chaotic regime to accomplish this task. We call this procedure 
of chaotic operation mode. 

The chaotic operation mode has the same basis of the traditional operation mode. 
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The message, password and previous code are combined to achieve a strong cryptog- 
raphy not preserving repetitive patterns of the original message. While the operation 
mode combines the message and the previous coded message using elementary opera- 
tions, the chaotic operation mode uses a chaotic system to compute this combination. 
This approach improves the cryptography, making the analysis of it more difficult. 

In the following, we show how to use a dynamical system in cryptography. Firstly 
consider n\ = n c vectors r, with initial condition r*o. Notice that r is a vector, where 
each component represents a variable of the Lorenz attractor so that it is a three dimen- 
sional vector. Each vector is obtained by the iteration: f% — P^-i + M(Pj)], where 
F(x) is a given vectorial function of a vector x which represents the dynamical system. 
The components of the vectorial function M = (mi, m.2, TO3), with < rn,; < 0.255, 
with i = 1,2,3, transforms the argument Pj (an integer between and 255) depending 
on the iteration step. Notice that the plaintext characters alter step by step the iteration 
process, which in a parameter region of chaos gives rise to the chaotic operation mode. 
The elements of the ciphertext are obtained from: (7, = E#[Pi + /(f*-i)]> which 
encrypts the scalar Pj, using bit- to-bit operations with bits extracted from the vectors 
f. The function f(r) extracts a value from the vector r of the dynamic system. The 
decode process is simply achieved with the inverse operation: Pj = D^[C; L + /(f\-_i)]. 

Recently a security fault in the logistic map based algorithm that could be extended 
to other chaos system was demonstrated 1 30 1 . It is based on the return of the map that 
can be explored to break into the cipher. The chaotic operation mode solves this secu- 
rity fault of the chaos based cryptography algorithms, since it combines the password 
and plaintext with the chaos system, making it more secure. 

When using the chaotic operation mode we call attention to the fact that if a mes- 
sage is altered we are able to detect it. In this way we guarantee its authentication. 
Besides, we can also guarantee the integrity of cipher. The chaotic operation mode can 
guarantee the authentication because a minimal change in d leads to a huge modifi- 
cation in the Lorenz's path, that can be easy identified, assuring integrity and conse- 
quently its authenticity. 

3 Lorenz-based Cryptography Algorithm 

We propose a full method that combines the dynamic system F(x) with the encode 
function E^. In our case, the dynamical system is the Lorenz's attractor that generates 
a trajectory which is combined with the message, password with the chaotic operation 
mode. We start defining the quantities used in the algorithm and then we carefully 
describe it. 

3.1 Definitions 

The proposed algorithm uses the Euler differential discretization method to numerically 
compute the Lorenz's equation system (other numerical methods could be considered) 
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n+i = F(fi), with r = (x, y, z) and: 

x i+ i = [(1 - a)xi + oyi]5t 
Vi+i = {pXi - 2y { - x l z l )8t 

z i+1 = fayi + (1 - /3)zi]St , (1) 

The parameters < St < 0.027, a = 10.0 p = 28.0 and /3 = 8/3 are values where 
the system gives rise to chaotic sequences. The number of iterations n it , along the 
Lorenz's attractor, determines the speed of the processing of the algorithm. Here we 
have used n it — 3000. 

The password n is converted to decimal ASCII values, with size n^. Notice that n T 
has a limit, this is because of the representation of a real number in double precision in 
a given computer. The quantity £ = 52, according to the IEEE754 convention, is the 
number of bits of the mantissa to represent a double precision number. 

The first stage of the algorithm is devoted to the conversion of the password into a 
coordinate of the Lorenz's attractor space. The vector ff, of size n v , is converted into a 
vector a = (ai,a 2 , 03), with the following components: 



. Ef=iTi2 8(< - 1) ifn w mod3 = 

Ef=i ^2 8 * + ir 3L+1 ifn T mod3^0 

E?=l+i ^2 8[ - L+(l - 1)] if n n mod 3 ^ 2 

"2 = < ' ' (3) 

£"i+i Jri2 8 (- L +*) + ir 3L+2 if n n mod 3 = 2 



^2L 
= L+l 

3L 



= ^ * 2 8[ - 2i+(l - 1)] , (4) 



i=2L+l 



where L = floor^^ /3). The vector a is then converted to a! = (g(a\), 3(02), 3(03)), 
where g{x) = x /io ceil ( lo s[2 8<1 ' +1) ]) so that < a\ < 1, with i = 1, 2, 3. 
The starting point to move in the Lorenz's attractor is written as: 

r = a' + \, (5) 

with A = (Ai, A 2 , A3). The components of A are chosen to have values in the following 
range: -15.67 < Ai < 16.01, -11.28 < A 2 < 16.01 and 0.090 < A 3 < 62.000. 
These ranges guarantee stable chaotic phases. 

Firstly, compute p = (pi, p 2 , p 3 ), so that: p\ = (ai + a 2 + a 3 ) mod 3, p 2 = 
(cii*a 2 + a 3 ) mod 3 and ^3 = (ai+a 2 *a 3 ) mod 3. Compute now, a = (ai, a 2 , 013), 
so that: 

{X n , Mi = 
y n , Hi = 1 , (6) 
Z71 7 pi = 2 

with n = 0. Now, choose values for fc = (k\, k 2 ,k 3 ), with the components of this 
vector in the range: 2 < fcj < floor[(£ — 14) /8], so that &j being an integer. Finally, 
compute Q = (Cli, Q 2 , ^3) so that: 

Cli — hash(ia) mod fcj , (7) 
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where hash(a) is a hash function such as MD5 or SHA. These values have been chosen 
to obtain the less significant bytes in the coordinates of the Lorenz's attractor. This 
contrasts to the procedure presented in Ref. |20] and Ref. pT) where the integer and 
first digits from the decimal part are considered. The procedure we propose makes the 
cipher frequency distribution uniform not giving clues for undesirable decodification 
as show in Sec. [4] In Figure[T]we depict the frequency distribution of the integer part as 
well as the decimal part of the Lorenz's attractor. In Fig.[TJa), we show that the integer 
part of coordinates of the Lorenz's attractor are concentrated in the middle of the graph 
varing in a short range. In Fig. |TJb), we show that the first digits of the decimal part 
of the coordinates of the Lorenz's attractor are concentrated. In Fig. [TJc) and (d), we 
show that the frequency distribution is practially uniform for the 3rd and 4th and 5th 
and 6th pairs of digits. We call attention to the fact that the low significant digits are 
the heard of our algorithm. 

To encrypt a plaintext, we propose a new encode function. This function com- 
bines an integer (a decimal ASCII of the plaintext) and a float point (obtained from 
the trajectory in the Lorenz's attractor) in the argument to produce an integer, between 
and 255, to represent the coded character. For this reason one has a structure as: 
E s,n( p i) = [Pi+f(S,d)] mod 2 8 . 

Let us now concentrate in /(a, Qj, with a and ft are quantities related to the pass- 
word 7? and depend on the Lorenz's attractor. Here we only use the components a± 
and «2, which are float point numbers and Qi and £! 2 , which are integer numbers. 
The algorithm to obtain these quantities in the successive iterations is presented in 



Section 3.2 where we show that and O3 are auxiliary quantities. 

Our objective is the creation of a ternary operation, which operates on a character 
code and on two float point numbers so that an inverse operation exists, combined with 
the password 7?, and one can easily perform the decode operation. To accomplish this 
task, consider a float point number a, so that it mantissa has £ bits and we convert it to 
an integer multiplying it to 10", where v — floor(log 2^~ 6 ) with the function floor(a;) 
taking the integer part of x. The product floor(alO iy ) is an integer with 16 bytes. Recall 
that the integer 255, is a byte of l's. To move this eight l's to the left, one multiplies it 
by 2, so that, multiplying 255 to 2 8 , one displaces 255 of one byte. To displace 255 of 
VL bytes, one must multiply it to 2 8 °. The number 255 x 2 8 ° is a mask. To obtain the 
O-th byte of the quantity floor(alO iy ), apply the logical AND operation, represented 
by A, with the mask 255 x 2. A resulting large float number is obtained dividing the 
above result by 2. Consider the function: 

floor(olO-) A (255 x 2 8 ») 
H v {a,U) = ^ . (8) 

Now we are able to write the encode function as: 

2 



y = £ 5,flW 



x ■ 



and the function used to decode the information as: 

2 

x = D s,n(y) 



mod 2 8 , (9) 



mod 2 8 , (10) 
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Figure 1: Frequency distribution of the integer part as well as the decimal part of the 
Lorenz's attractor. (a) integer part, (b) first two digits of the decimal part, (c) third and 
fourth digits of the decimal part and (d) fifty and sith digits of the decimal part. 



To prepare data for the following steps set: a' = a, n' = ft and Vl' = ft. We 
call attention to the reversibility of the mod operation of Eqs.|9]and 10 We have 
chosen to use the mod operator instead of the bitwise XOR operator because its full 
reversibility asks for an additional operation (inversion of the argument). Another im- 
portant aspect is that the reversibility of mod is not so obvious as simple change of 
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the state of bits. These two points combined make the codification more difficult to be 
broken in with mod. 

We have chosen to use the mod operator, which gives the rest of a division, in- 
stead of the bitwise XOR operator because to have a full reversibility, an additional 
operation (inversion of the argument) is necessary in mod operation. This makes the 
codification more difficult to be broken in. 



3.2 Successive Iterations 

The process of encrypting and decrypting a message can be divided into 3 steps, which 
are shown below. The dynamic system iterates the components of P or C. Some 
parts of the algorithm are different for the first iteration. This is necessary because the 
method uses variables calculated in the previous iteration. 

Step 1: The function E (encryption) or D (decryption) is used to compute Pi or C. L \ 
C i = E 8,fi( p i)> for encrypting and P, L = D s ^(d), for decrypting, where E 3 ^ 
and D s ^ are given by Equations |9j and 
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Step 2: The chaotic operation mode is carried out. Consider the quantity Q3, the pass- 
word 7?, and = Pj/10 3+ 3 . The Lorenz's attractor is calculated to shuffle the 
elements and ensure that there are no possibility of similarity of cipher blocks 
when there is a similarity in the blocks of the plaintext. The chaotic operation 
mode changes one of the Lorenz's parameters, adding O to the x component if 
/i3 = 0, to y if /i3 = 1 or to z, if /i^ = 2. 

Step 3: The quantities fa are calculated as: = [fa + R l/ (ai, Vli)] mod 3 where 
R v is given by Eq. [8] The components of a are given by Eq|6] Consider 
now &3 an integer in the range < kj, < v — 2 and calculate f2j = [fi^ + 
Ru{ct[(i+2) mod 3]+ij m °d h, where R u is given by Eq. [I] Finally set: 
a 1 = a, fjJ = p, and f2' = J7, f„ = r n + a! . 

We stress that this algorithm may be adapted to use other dynamical system that 
presents chaos as the maps obtained from discrete population models pTJ. 



4 Experiments and Results 

Perhaps, there is no cipher that cannot be broken into, and never will be, at least, using 
conventional computers and numerical mathematics. History demonstrates that, many 
ciphers, which were considered invincible were in fact broken into. Indeed, the cryp- 
tography and cryptoanalysis are in constant conflict, in which, there are no permanent 
winners. New ciphers are always appearing and new cryptoanalysis methods emerg- 
ing to break into them (the red queen effect). As a result, it is hard to predict, how 
difficult it is to break into a cipher. Nevertheless, there are some metrics that can help 
the analysis and can estimate how much the cipher makes the ciphertext shuffled and 
unintelligible, allowing for a supposition about how strong the cipher is. 
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In the following, two experiments with the proposed algorithm are presented. Firstly, 
the algorithm encrypts a text message and an image. The analysis of the shuffled ca- 
pability of the method is presented. Besides the security, the computer performance is 
another important point for a cipher to be able to be used in real world applications. 
Secondly, the results of the performance for the two versions of the sequential and par- 
allel algorithm are presented. The results are compared with a popular AES method, 
which is used commercially nowadays. 

When a ciphertext is yielded, several analysis estimating the strength of the cryp- 
tography are made. In the text experiment, the book "The Return of Sherlock Holmes" 
was encrypted. Long texts, such as books, are easier to be broken into when compared 
with short messages since statistical patterns may be explored. 

One of the most well known methods of cryptoanalysis is the frequency analysis. It 
is quite simple and consists of carrying out a histogram, which presents the ASCII char- 
acters frequency, giving tips about their frequency pattern for the cryptoanalysis. The 
frequency analysis is carried out and displayed in Figure [2] It illustrates the histogram 
of the considered book, comparing the plaintext (Figure 121(a)) with the ciphertext (Fig- 
ure|2](b) and (c)). Notice that, the distribution is almost constant in the ciphertext, like 
a white noise, which illustrates a good performance for the crypto. Figures[2](b) and (c) 
present the book's histogram encrypted with two slightly different passwords:"123456" 
and "123457'. The two histograms have different plots, illustrating the way the cryp- 
tography result depends on the password. 

The Shannon's entropy is another approach to estimates how unintelligible the ci- 
phertext is. For a eight bit codification the text entropy is S = — X^o 1 Pi 1°82(P»)> 
where is the relative frequency of the i-th ASCII character. The maximum entropy 
value is obtained when all the pi are the same (p$ = 1; 2) leading to S max = 8. The 
entropy of the book plaintext is 4.5 while, the entropy of the ciphertext attains its max- 
imum value S — Smax — 8. The entropy achieved by the cryptography is the same 
as the theoretical prediction for the system. This result shows that the ciphertext has a 
very low level of redundancy or predictability. 

In Figure[3]auto-correlation matrices are shown, comparing the plaintext (Figure|2]i 
(a) with the ciphertext (Figure [2] (b) and a white noise signal with the same length of 
the book (c)). 

In the second experiment, the cipher was evaluated encrypting an image. Images 
are also appropriate to cryptoanalysis, as, they have strong global and local patterns 
and redundancy. The experiment is to compare three images: the original one, the 
cipher-image and white noise image. The frequency analysis has been performed and 
compared it to 2D Fourier power spectrum of the images (see Figure [4). Notice that 
while the original image histogram has a lot of information concerning the image and 
both the cipher image and noise histograms are similar. This fact shows how unintelli- 
gible the encrypted image is. Unlike the spectrum of the original image, the spectrum 
of the noise and the cipher-image does not present any frequency information, which 
demonstrates that the information cannot be achieved in the cipher-image. 
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Figure 2: The frequency analysis of the book "The Return of Sherlock Holmes" using 
slightly different passwords, (a) Histogram of the plaintext the circle 1 represents the 
frequency of character 'space' and the circle 2 represents the frequency of character 
'e' , (b) histogram of the ciphertext using "123456" as a password and (c) ciphertext 
histogram using "123457' as a password. 
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Figure 3: The auto-correlation matrices of the book "The return of Sherlock Holmes', 
(a) Auto-correlation matrix of the plaintext, (b) auto-correlation matrix of the ciphertext 
and (c) auto-correlation matrix of a white noise signal. 
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Figure 4: Comparison of a plain image, cipher image and white noise. In the first row, 
the matrices analyzed are shown: (a) plain image, (b) cipher image and (c) white noise. 
In the second, the histogram analysis of the: (d) plain image, (e) cipher image and (f) 
white noise. And in the last row, there is the Fourier power spectrum of: (g) plain 
image, (h) cipher image and (i) white noise. 



5 Fast and parallel version 

Performance is the most important obstacle that prevents practical use of chaos based 
cryptography algorithms. In fact, they need float point and numerous calculations, 
which make the chaos cryptography programs much slower than the traditional ones. 
To make the proposed algorithm feasible, we have improved its performance using 
parallel computation, which is in current use nowadays via the increase of multiple 
cores in the computer processor or with the use of graphical cards with multiple GPUs 
(Graphical Processing Unit). 

The nature of our algorithm allows an intuitive parallelization. Consider a message 
of size n and a machine with p processors. The parallel algorithm splits the message 
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into p parts and executes each part into a different processor. For each process a partic- 
ular initial condition is selected. 

The computer performance of the cryptography algorithm is an important item to 
make it feasible for real applications. The algorithm has been implemented in Java 
and also in C (fast version). The choice of Java was made due to its portability and 
capability to run on multiple operational systems and computer hardware (also small 
devices such as mobile phones). Two versions of the algorithm have been implemented: 
the full proposed method as described in Section [3] and its parallel version described 
above. In the parallel version, the chaotic operation mode has been adapted to make 
the algorithm easy to be parallelized. This version is weaker than the original version, 
but it is faster and also highly parallelized. There is also a performance comparison of 
this implementation with the popular AES cryptography method |4| shown in Figure[5] 

Figure [5^ shows the plot of the time consumption versus the size of the file en- 
crypted for the sequential strong version. The machine used was a Pentium 4 - 3.40 
GHz, with 3 GB of memory and which runs Gentoo Linux distribution and a Intel 
QuadCore Q8200 with 4 GB of memory and which runs Debian Linux 5.0 distribu- 
tion. The algorithm has an average of rate of approximately 1.5 MB/min. Note that the 
program was implemented in Java and can achieve a performance of 3 or 4 times faster 
if it is built using the C language. Although, this performance is very slow, it can be 
considered usable for high security purpose tasks. 

To improve the performance of the algorithm, a simpler (but still strong), fast and 
parallel version has been developed (Subsection [3). The fast parallel version was 
implemented in C and, to explore mass computer parallelism, the GPU (Graphics 
Processing Unit) architecture was adopted (8800 GT graphical card) and the CUDA 
(www.nvidia.com), a GPU programming tool for C, was used. Figure [5J3 presents 
the performance of the program compared with the AES. Both programs run on the 
same computer (described previously). The performance of the chaos based algorithm, 
which is approximately (approximate 2.5 MB/s in a Nvidia Geforce 8800GT and ap- 
proximate 4.3 MB/s in a Nvidia GTX 285) is close to the AES (approximate 8.3 MB/s 
in a Intel Pentium 4 3.4 Ghz and approximate 18 MB/s in a Intel QuadCore Q8200). 
The great performance of the fast and parallel implementation allows immediate use of 
the chaos cryptography algorithm in real life applications, which has an advantage of 
being more secure then the traditional cryptography approach. 

6 Conclusion 

In this paper, a new cryptograph algorithm based on the Lorenz's attractor and a novel 
method to carry out the operation mode with chaos (Chaotic Operation Mode) were 
proposed. The proposed algorithm in combination with the Chaotic operation mode 
achieves a strong cipher. The novel method has been implemented in Java (sequential 
strong version) and also in CUDA (parallel fast version) and experiments present the 
performance of cryptography and as well as the time of the algorithm has been pre- 
sented and discussed. The performance of the method and the comparison with the 
AES algorithms demonstrate that the method is suitable and prepared for real life ap- 
plications. The analysis of the algorithm and of the results, we notice that the algorithm 
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Figure 5: Performance graphs, (a) Sequential performance of the proposed algorithm 
size in MBytes versus time in seconds, (b) Comparison of the performance of the 
proposed algorithm in the GPU version and the AES cryptography method . Line 1 
represents the performance of the proposed algorithm in a Nvidia geforce 8800 GT. 
Line 2 represents of the performance of the AES algorithm in a Intel Pentium 4 3.4 
Ghz. Line 3 represents of the performance of the AES algorithm in a Intel QuadCore 
Q8200 and line 4 represents the performance of the proposed algorithm in a Nvidia 
GTX 285. 



is strong and perhaps very difficult to break into. However, it is very difficult to de- 
termine in fact, how hard t is to break into a cipher. Besides the set of experiments 
conducted and presented, a web version of the algorithm has been implemented. We 
would like to invite crypto-analysts to try to break into the proposed cipher, and help us 
to determine the reliability of the method and of course, to help develop of new meth- 
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ods. Cryptology is a dynamic science which is forever changing. The cryptography 
page can be found at http://www.mandelbrot.ifsc.usp.br/cryptoJorenz, and the reader 
can find an interface for encode and decode messages and files. 



7 Acknowledgements 

A. G. M. acknowledges support from CNPq (I. C. Grant). A. S. M. acknowledges 
the support of CNPq (303990/2007-4, 476862/2007-8). O. M. B. would like to thank 
CNPq (306628/2007-4). 

References 

[1] E. Biham, R. Anderson, L. Knudsen, Serpent: A new block cipher proposal, in: 
In Fast Software Encryption '98, Springer- Verlag, 1998, pp. 222-238. 

[2] B. Schneier, J. Kelsey, D. Whiting, D. Wagner, C. Hall, N. Ferguson, Twofish: A 
128-bit block cipher, in: in First Advanced Encryption Standard (AES) Confer- 
ence, 1998. 

[3] X. Lai, J. L. Massey, A proposal for a new block encryption standard, Springer- 
Verlag, 1991, pp. 389^104. 

[4] J. Daemen, V. Rijmen, The Design of Rijndael: AES - The Advanced Encryption 
Standard, Springer- Verlag, 2002. 

[5] M. Diffie, W. Hellman, New directions in cryptography, Information Theory, 
IEEE Transactions 22, 644 (1976). 

[6] L. A. R. L. Rivest, A. Shamir, A method for obtaining digital signatures and 
public -key cryptosystems, Commun. ACM 21, 120 (1978). 

[7] N. Koblitz, Elliptic curve cryptosystems, Mathematics of Computation 48, 203 
(1987). 

[8] M. Matsui, A. Yamagishi, A new method for known plaintext attack of feal cipher, 
in: EUROCRYPT, 1992, pp. 81-91. 

[9] E. Biham, A. Shamir, Differential cryptanalysis of the full 16-round des, in: 
CRYPTO '92: Proceedings of the 12th Annual International Cryptology Con- 
ference on Advances in Cryptology, Springer- Verlag, London, UK, 1993, pp. 
487^96. 

[10] J. P. Nicolas Courtois, Cryptanalysis of block ciphers with overdefined systems 
of equations, LNCS 2501, 267 (2002). 

[11] X.-Y. Wang and X.-J. Wang, Design of chaotic pseudo-random bit generator 
and its applications in stream-cipher cryptography, Int. J. Mod. Phys. C 19, 813 
(2008). 



16 



[12] L. Pecora, T. Carroll, Synchronization in chaotic systems, Phys. Rev. Lett. 64, 821 
(1990). 

[13] L. Kocarev, K. S. Halle, K. Eckert, L. O. Chua, U. Parlitz, Experimental demon- 
stration of secure communications via chaotic synchronization, Int. J. Bifurcation 
and Chaos 2,709 (1992). 

[14] U. Parlitz, L. Kocarev, T. Stojanovski, H. Preckel, Encoding messages using 
chaotic synchronization, Phys. Rev. E 53, 4351 (1996). 

[15] S. Bu, B. Wang, Improving the security of chaotic encryption by using a simple 
modulating method, Chaos Soliton and Fractals 19, 919 (2004). 

[16] K. Murali, Heterogeneous chaotic systems based cryptography, Phys. Lett. A 272, 
184(2000). 

[17] M. Baptista, Cryptography with chaos, Phys. Lett. A 240, 50 (1998). 

[18] W.-k. Wong, L.-p. Lee and K.-w. Wong, A modified chaotic cryptographic 
method, Computer Physics Communications 138, 234 (2001). 

[19] T. Xiang, X. Liao, G. Tang, Y. Chen, K. wo Wong, A novel block cryptosystem 
based on iterating a chaotic map, Phys. Lett. A 349, 109 (2005). 

[20] R. He, P. G. Vaidya, Implementation of chaotic cryptography with chaotic syn- 
chronization, Phys. Rev. E 57, 1532 (1998). 

[21] A. Ali-Pacha, N. Hadj-Said, A. M'Hamed, A. Belgoraf, Lorenz's attractor ap- 
plied to the stream cipher (ali-pacha generator), Chaos Soliton Fractals 33, 1762 
(2007). 

[22] C. Shannon, Communication theory of secrecy systems, Bell System Technical 
Journal, 28 656 (1949). 

[23] M. Dworkin, Recommendation for block cipher modes of operation methods and 
techniques, NIST Special Publication 800-38A. 

[24] G. M. B. Oliveira, A. R. Coelho and L. H. A. Monteiro, Cellular automata crypto- 
graphic model based on bi-directional toggle rules, Int. J. Mod. Phys. C 15, 1061 
(2004). 

[25] J. C. S. T. Mora, Transitive behavior in reversible one-dimensional cellular au- 
tomata with a Welch index 1, Int. J. Mod. Phys. C 13, 837 (2002). 

[26] J. C. S. T. Mora, S. V. C. Vergara, G. J. Martinez and H. V. Mcintosh, Spectral 
properties of reversible one-dimensional cellular automata, Int. J. Mod. Phys. C 
14, 379 (2003). 

[27] J. C. S. T. Mora, M. G. Hernandez, G. J. Martinez and S. V. C. Vergara, Extensions 
in reversible one-dimensional cellular automata are equivalent with the full shift, 
Int. J. Mod. Phys. C 14, 1 143 (2003). 



17 



[28] A. M. del Rey and G. R. Sanchez, On the reversibility of 150 Wolfram cellular 
automata, Int. J. Mod. Phys. C 17, 975 (2006). 

[29] A. M. del Rey and G. R. Sanchez, Reversibility of a symmetric linear cellular 
automata, Int. J. Mod. Phys. C 20, 1081-1086 (2009). 

[30] X.-Y. Wang, C.-F. Duan and N. Gu, A new chaotic cryptography based on ergod- 
icity, Int. J. Mod. Phys. B 22, 901 (2008). 

[31] A. S. Martinez, R. S. Gonzalez and A. L. Espindola, Generalized exponential 
function and discrete growth models Physica A 388, 29222930 (2009). 



18 



